H3C Technologies H3C S6300 Series Switches User Manual

289

Generating Keys...

.++++++++++++++++++++++++++++++++++++++++++++++++++*

........+......+.....+......................................+

...+.................+..........+...+

Create the key pair successfully.

# Enable the SSH server.

[Switch] ssh server enable

# Assign an IP address to VLAN-interface 2. The Stelnet client uses this IP address as the destination
for SSH connection.

[Switch] interface vlan-interface 2

[Switch-Vlan-interface2] ip address 192.168.1.40 255.255.255.0

[Switch-Vlan-interface2] quit

# Set the authentication mode to AAA for the user lines.

[Switch] line vty 0 63

[Switch-line-vty0-63] authentication-mode scheme

[Switch-line-vty0-63] quit

# Import the client's public key from file key.pub and name it switchkey.

[Switch] public-key peer switchkey import sshkey key.pub

# Create an SSH user client002 with the authentication method publickey, and assign the public
key switchkey to the user.

[Switch] ssh user client002 service-type stelnet authentication-type publickey assign

publickey switchkey

# Create a local device management user client002 with the service type ssh and the user role

network-admin.

[Switch] local-user client002 class manage

[Switch-luser-manage-client002] service-type ssh

[Switch-luser-manage-client002] authorization-attribute user-role network-admin

[Switch-luser-manage-client002] quit

3.

Specify the private key file and establish a connection to the Stelnet server:

a.

Launch PuTTY.exe on the Stelnet client to enter the interface shown in

Figure 89

.

b.

In the Host Name (or IP address) field, enter the IP address 192.168.1.40 of the Stelnet server.